Security news aggregator

Latest coverage for Admission

The Admission tag covers security disclosures and statements that clarify how breaches or unauthorized access occurred.

6 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Admission is the decision to allow or deny a user, device, application, or service access to a resource. In information security, it usually combines authentication—checking who or what is requesting access—with authorization—determining which actions and resources are permitted. The term can also describe network or application admission controls that assess a device’s identity, configuration, or security state before allowing it to connect.

Weak admission controls can expose systems through stolen credentials, missing multi-factor authentication, misconfigured access-control lists, or roles that grant more privilege than necessary. Effective controls apply least privilege, restrict access by context where appropriate, and review permissions as people, devices, and services change. Recording both successful and rejected admission decisions supports detection and investigation of suspicious access, while periodic testing helps identify bypasses and unsafe defaults.

Volume over time

Weekly headline count for the current query.

Showing 6 most recent headlines Filtered view
The Hacker News 5 months, 3 weeks ago

Exposure Assessment Platforms Signal a Shift in Focus

Gartner® doesn’t create new categories lightly. Generally speaking, a new acronym only emerges when the industry's collective "to-do list" has become mathematically impossible to complete. And so it seems that the introduction of the Exposure Assessment Platforms (EAP) category is a formal admission that traditional Vulnerability Management (VM) is no longer a viable way to secure a modern

Following heightened worries that U.S. users' data had been accessed by TikTok engineers in China between September 2021 and January 2022, the company sought to assuage U.S. lawmakers that it's taking steps to "strengthen data security." The admission that some China-based employees can access information from U.S. users came in a letter sent to nine senators, which further noted that the